Red Hat Delivers More Secure Containers with New Scanning Capability
New container interface supports multiple scanner integrations,
including OpenSCAP and Black Duck, and builds on partner ecosystem for
Red Hat OpenShift Container Platform
SAN FRANCISCO--(BUSINESS WIRE)--
RED HAT SUMMIT 2016 - Red Hat, Inc. (NYSE: RHT), the world's
leading provider of open source solutions, today launched a new
container scanning interface to enable security partners to easily plug
into Red
Hat OpenShift Container Platform. As containers move from experiment
to enterprise-reality, a key consideration is security. Today’s news
builds upon Red
Hat’s leadership in container security. By integrating with multiple
container scanners, Red Hat and its partners enable users to more easily
see what’s running inside their containers and whether the latest
security updates have been applied. The new container capabilities come
via the latest version of Red Hat Enterprise Linux Atomic Host, which
serves as the container operating system for Red Hat OpenShift Container
Platform.
Expanding Red Hat’s existing collaboration
with Black Duck Software, Black Duck Hub is now fully integrated and
supported as a container scanner. Black Duck Hub provides deep container
inspection (DCI) of many open source component used in the operating
system user space, as well as applications and libraries that might be
added to containers by developers. The scanner maps known open source
security vulnerabilities and dynamically monitors container inventory,
providing alerts on any new vulnerabilities affecting the code. By
running natively on Atomic Host, Black Duck Hub delivers added
confidence in the security profile of all container images and
components from development to test to production, all at scale.
Additionally, Red Hat Enterprise Linux Atomic Host also includes a
technology preview of the OpenSCAP scanner. The Open Security Content
Automation Protocol (OpenSCAP)
project provides an ecosystem of tools and policies to help assess,
measure and enforce IT security measures; the OpenSCAP scanner, also
integrated with Atomic Host, applies these same protocols to container
content, helping to more quickly identify vulnerabilities for
remediation.
The new version of Atomic Host provides several other features and
capabilities as well, including:
- Updated container runtimes, offering users a choice of Docker
or Open Container Initiative (OCI) run times.
- Improved systems integration to simplify migrating existing
applications to more easily run inside containers.
- Improved update functionality for hotfixes between full
releases.
- Graphical management to help make it easier to perform
administration tasks, including updates from within Cockpit.
Webcast
Paul Cormier, president, Products and Technologies, Red Hat, will host a
webcast live from Red Hat Summit to discuss today's announcement at
11:45 a.m. PT on June 28, 2016. Following remarks, press and analysts
are invited to participate in a question and answer session.
To join the webcast or view the replay after the event, visit: https://vts.inxpo.com/Launch/QReg.htm?ShowKey=32847
Supporting Quote
Tim Yeaton, senior vice president, Infrastructure Business Group, Red
Hat
“Our customers want the agility of containers but cannot risk their
mission-critical systems and applications on unknown content or
unsupported containers - a key reason behind Red Hat’s focus on
container security across our portfolio. While security is crucial to
all industries, there is no ‘silver bullet’ for all of our customers’
needs, especially with the many varied deployment scenarios for Linux
containers. We recognize this challenge, and the latest version of Red
Hat Enterprise Linux Atomic Host, with its simplified scanner
integration, gives enterprises the freedom to choose a container
scanning technology that best meets their needs.”
Lou Shipley, CEO, Black Duck
“In survey after survey it’s very clear that Enterprise customers are
eager to embrace container technology because of its economic and
productivity benefits, but those same surveys also reveal a hesitancy to
adopt containers because trust and security remain open issues. With
this integration Black Duck and Red Hat have taken a bigger step toward
the more secure and trusted container model that we’re both committed to
delivering.”
Additional Resources
Connect with Red Hat
About Red Hat, Inc.
Red Hat is the world's leading provider of open source software
solutions, using a community-powered approach to provide reliable and
high-performing cloud, Linux, middleware, storage and virtualization
technologies. Red Hat also offers award-winning support, training, and
consulting services. As a connective hub in a global network of
enterprises, partners, and open source communities, Red Hat helps create
relevant, innovative technologies that liberate resources for growth and
prepare customers for the future of IT. Learn more at http://www.redhat.com.
Forward-Looking Statements
Certain statements contained in this press release may constitute
"forward-looking statements" within the meaning of the Private
Securities Litigation Reform Act of 1995. Forward-looking statements
provide current expectations of future events based on certain
assumptions and include any statement that does not directly relate to
any historical or current fact. Actual results may differ materially
from those indicated by such forward-looking statements as a result of
various important factors, including: risks related to the ability of
the Company to compete effectively; the ability to deliver and stimulate
demand for new products and technological innovations on a timely basis;
delays or reductions in information technology spending; the integration
of acquisitions and the ability to market successfully acquired
technologies and products; the effects of industry consolidation;
uncertainty and adverse results in litigation and related settlements;
the inability to adequately protect Company intellectual property and
the potential for infringement or breach of license claims of or
relating to third party intellectual property; risks related to data and
information security vulnerabilities; ineffective management of, and
control over, the Company's growth and international operations;
fluctuations in exchange rates; and changes in and a dependence on key
personnel, as well as other factors contained in our most recent Annual
Report on Form 10-K (copies of which may be accessed through the
Securities and Exchange Commission's website at http://www.sec.gov),
including those found therein under the captions "Risk Factors" and
"Management's Discussion and Analysis of Financial Condition and Results
of Operations". In addition to these factors, actual future performance,
outcomes, and results may differ materially because of more general
factors including (without limitation) general industry and market
conditions and growth rates, economic and political conditions,
governmental and public policy changes and the impact of natural
disasters such as earthquakes and floods. The forward-looking statements
included in this press release represent the Company's views as of the
date of this press release and these views could change. However, while
the Company may elect to update these forward-looking statements at some
point in the future, the Company specifically disclaims any obligation
to do so. These forward-looking statements should not be relied upon as
representing the Company's views as of any date subsequent to the date
of this press release.
Red Hat, Red Hat Enterprise Linux, Red Hat Enterprise Linux Atomic
Host, OpenShift, and the Shadowman logo are trademarks or registered
trademarks of Red Hat, Inc. or its subsidiaries in the U.S. and other
countries. Linux® is the registered trademark of Linus Torvalds in the
U.S. and other countries.
View source version on businesswire.com: http://www.businesswire.com/news/home/20160628006044/en/
Red Hat, Inc.
John Terrill, 571-421-8132
jterrill@redhat.com
Source: Red Hat, Inc.